People still use lists, as it saves verification and bounce management leaving the botnet free to push spam. ISC posted on it recently and it payed more than I expected, but it was still less than a buck for a million emails. I have run into list sellers that guarantee virgin emails, emails that aren't on other lists, which usually pay more. Last time I checked they achived this by writing a bot that creates accounts with free mail providers and sell you accounts that will never be read by humans. Chances are it won't offset your bandwidth cost for scraping unless you live in a third world country.
As with 419 scalping I would recommend caution as the spammers are usually connected to someone who is happy to track you down and break your knee-caps if you screw them around.

We've seen a fairly dramatic drop in spam recently, down to about 20k spams a day that hit the mail server, though only a handful ever make it through, down from about 120k at the peak 5-6 months ago.

The ckers.org domain only has 4 valid addresses, but gets the majority of spam because it is the highest ranked. The rest of our domains combined (~20) get less than 5% of the total spam despite having far more valid users.

I did a quick google search, since it was some time ago and their diary flips day by day, but nothing turned up. Typical with ISC. You can have a fiddle at http://isc.sans.org

Your list looks like vanilla dictionary spam to me. Did you notice the drop after the McColo removal? Haven't really kept on top of the tube news this holiday season so I'm unaware of any recent changes in the spam landscape.

There are forums that you have to get voucher by 3-5 people to access them. Usually Russian since all the English speaking ones keep getting raided by the fbi/interpol. Anyhow, email databases go for 5 to 10 dollars per 1000. The price depends on :

a) If the database is fresh -> that means databases retrieved from legit websites, normally by hacking, and that haven't been sold already.

b) What type of database it is. Databases retrieved from dating and job-search websites are in more demand. Also emails from U.S and Europe are in more demand.

c) The information that comes with the databases. It's good to provide first name, last name, and the location of the user for each email. Also a couple of hundreds of usernames and passwords of the website that the database was retrieved from are usually request to prove the validity of the transaction.

Anyhow, I wouldn't suggest you guys try this. You find yourself hooked, soon you cross the ethical limit and start selling credit cards, bank accounts and etc...
Next thing you know the FBI is at your door....